Re: postfix not checking header_checks file

From: Wietse Venema (no email)
Date: Thu Jan 01 2004 - 13:05:49 EST

• Next message: Magnus Bäck: "Re: postfix not checking header_checks file"
• Previous message: Dean Strik: "Re: Acceptance of domain literals"
• Maybe in reply to: Jon Langton: "postfix not checking header_checks file"
• Next in thread: Magnus Bäck: "Re: postfix not checking header_checks file"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Jon Langton:
> I screwed up my last email. Here is what I have:
> header_checks = regexp:/etc/postfix/header_checks in main.cf
> /^From: .*<>/ REJECT in header_checks file

This looks at the From: message headers.

> With this config I see in /var/log/maillog an entry of From=<> size=3225,

This reports the sender address as specified with the MAIL FROM
command in the SMTP protocol. This address is completely separate
to what you see in the From: message header.

For example, this message arrives at you with my From: address
but with MAIL FROM address of the mailing list.

The <> sender is defined in the SMTP protocol standard (RFC821)
for use to return undeliverable mail and other notifications by
the mail system itself.

        Wietse

> nrcpt=1 (queue active) then I see a bunch of outbound emails so I am
> assuming that they are using a null? from field to fool postfix into
> relaying email. Any ideas how to prevent this?
>
>
> -----Original Message-----
> From: Magnus B?ck [mailto:]
> Sent: Thursday, January 01, 2004 10:43 AM
> To:
> Subject: Re: postfix not checking header_checks file
>
>
> On Thu, Jan 01, 2004 at 10:31:56AM -0700,
> Jon Langton <> wrote:
>
> > I have installed postfix 2.0.16 on RedHat Linux 7.2 (kernel 2.4.20-24.7)
> > and am using it to relay email to and from my production Exchange server.
> > I am having issues with the header_checks file in that nothing gets
> > blocked that has the / REJECT set in this file. In my main.cf file I have
> > header_checks = hash:/etc/postfix/header_checks.
>
> You probably don't want to use a hash map for header_checks. Use regexp
> or, even better, pcre.
>
> > In the header_checks file I have From: <>/ REJECT or From:<>/ REJECT
> > which doesn't seem to work. Can someone help me with the correct
> > syntax?
>
> Read regexp_table(5) or pcre_table(5) for a syntax description. It seems
> that you're missing a / at the beginning of the line. Use postmap(1) to
> debug your expressions.
>
> (If you *really* want to use a hash map, which I assume will work, read
> access(5).)
>
> --
> Magnus B?ck
>

• Next message: Magnus Bäck: "Re: postfix not checking header_checks file"
• Previous message: Dean Strik: "Re: Acceptance of domain literals"
• Maybe in reply to: Jon Langton: "postfix not checking header_checks file"
• Next in thread: Magnus Bäck: "Re: postfix not checking header_checks file"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]